Flut von Mailer Daemon @ GMX Mails!

Bankzy · 27.10.2013, 16:54

Hallo liebes Forum,

ich bekomme seit einigen Tagen Unmengen an Mails von mailer-daemon@gmx.de obwohl ich keine E-Mails abgesendet habe. Mir ist natürlich bewusst, dass man von diesem Absender nur Emails erhält, wenn man eine Email an eine nicht existente Email Adresse verschickt. Ich habe bereits ein wenig im Internet recherchiert und mir ist aufgefallen, dass dieses Problem immer mal wieder auftaucht. Komischerweise enthält die Mailer-Daemon Email oft auch noch meine alternative googlemail Adresse. Vielleicht könnt ihr mir weiter helfen.

Ich muss aufgrund der Größe die Logfiles leider per Zip-Datei anhängen. Hier noch zwei Beispielmails vom Mailer-Daemon@gmx.de

Code:

ATTFilter

This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address
failed:

"andreoli85@googlemail.com":
SMTP error from remote server after transfer of mail text:
host: gmail-smtp-in.l.google.com
5.7.1 [212.227.15.19      11] Our system has detected that this message is
5.7.1 not RFC 2822 compliant. To reduce the amount of spam sent to Gmail,
5.7.1 this message has been blocked. Please review
5.7.1 RFC 2822 specifications for more information. h5si11441871eeg.320 - gsmtp


--- The header of the original message is following. ---

Return-Path: wfbb@lists.garnix.org
Received:  from amba.lu ([5.199.206.51]) by mx-ha.gmx.net (mxgmx113) with  ESMTP (Nemesis) id 0M4BuZ-1VsUTf0szb-00rrbt for <daniel.andreoli@gmx.de>;  Sun, 27 Oct 2013 13:16:08 +0100 sxpc kjl zcrb osv
From: "kzj abod" <wfbb@lists.garnix.org>
Reply-To: "kzj abod" <wfbb@lists.garnix.org>
To: anke-scholz@gmx.de
Subject: omb fquo
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain;
Envelope-To: <daniel.andreoli@gmx.de>
X-GMX-Antispam: 6 (nemesis text pattern profiler); Detail=V3;
X-GMX-Antivirus: 0 (no virus found)
X-UI-Filterresults: junk:10;V01:K0:R692gv3ejtI=:CsnrdseHwM3xdF07ifrO2s04Ak5C
 pizn2EkEmbs7iwFoAiqk3fmKSCPIZMu9o2J5TYqfzxPjK0MDD7vvmC3fl53vPpDGpgbKuhX3h
 d7dQ/Ovxb4tQs2Ou6b37ptYIauz9vUgSbgPUgBLRXhgJf45uQCnWqCYgH6LOhKY0SX1AjuKht
 fOY2JMSsvWwQyqltdlReV2uMTLaVunUUKAyFPihqsO07H65YUvTCYwihBkLwSyZRpDcNOmZbe
 ve78MbIX5dS53BZpH0g3VsvnW/GEu4c5/DTCEpQJQe5iW0NPGJDSI4UqGtvneiSqZdLiNZKeO
 pr83XeZotUjfpIsOfWZjojPHks7IeFXG98W8LivdWck1FKTCcj2+To0Ai+Jo5L9UwN+i64Okm
 5HuPIqfw0Y+u25yRR1ax89l0bleGhJyFvzibn+TaF8Sd8BemVV0/VLGzNW3URwmp1E4h5TRnI
 OdYBr3Ks4xVEvP15QHnbCFK4OEZc++8Jsbdq+o5GESQg8xueT6Q6CCVg9oRs8h7fj/e7rof8K
 rT+gMGLbef1UpKZKdrKEDvr8X5FmTmBW4oBOkTv5m/tt9CfOFpv6G42zA/ConeqH6ioXB+MTh
 giINgBuZyDEK35Q+dTkwXOiSD5TmoDpA8domCEjUcnD+4Xl/xEXuaOodQar7Rm7GQYsjEO+nK
 vHo8bzm2CUA4F+xTTKp6tMhcRL4z/zX7Cc1JwZeyuyD+oJmoBoxbG/dlhJaXUI160+8apwetW
 7u4HhnDtMx0ocOby5806L52+CKN3d1OsNU7F2aVw8/2tugFzUjGk+V4ybvVu9VgD/vjUsF+4I
 OBwlkpMJHJnpByHSHyjo3OZGhWrLls5nK6cqC62IbYhUZixCBHwr9dQckOd0nqz85hEVj0rc4
 zAQAKDCvTc3IR8JXOu4IzUBFw1Cz9OiJ6UZGE4M28Kv+CcOHFHE0JQ+abVsH3tLHjDxIIb1E3
 kkjcNWUED7Acv+Il/4hcqtUVHhuuSEVKcx9wi5FEYigsf43DF5awaaC1xcHp0rttlNaG/WXGg
 a0tH04aDb7H7B3GUVAIhOBiUrrQtR8AYpgCC09h3EchBJhwjxMEUgYIqqEHflwqxxNb6MXimp
 quCkCWFuhrXQrmNsDbwHCP9ZeEZjYiaA4fsHw2OYdS4lIBVJpKVBzrPY/vxjKc1EDKv8svDJt
 i3zKp4v6S5lrwQoHTtXK5KxzlCnwtkUccBFYYbwcu2OuxDGOogoxz+6f3NwlYW5rxCHvQULNg
 l/JrtZSnvIfijgblm0UtKSVw1c3u+2qn/2AYx1xg2ymDgPOUsaQjPzcy0YS4B5cPh8zKAdkIH
 FG9mzbwSM/I0eaI6WVnfZrToRMsOpxcdHQZLbkb0lJPFw5o8KeyC/KhZT6IlZ5aCEC1dial1/
 a1e7iEbY6uN7T2Rm57MXvBMw4QjZy8z78xxFnc0WqBK5j+7DBM0JM7/7Q3Uc64iMckPoDUf2M
 xv65VC0GJReDfnLJmnKL+iLLnmjtp6N4r15ryDXWofkHb/Fjxqb3EjFSe45UMcnwwTW1wxMvG
 wfZV1fvk3fLQUVsLzrFRAL387MVaT7LFMQQiBBF
X-UI-Loop:V01:8nx9Qv1M1rM=:VOxBr9ToApz0ZM1BqLmG3wfxlI6YL57nF4avku2+uiQ=

weitere Beispielsmail

Code:

ATTFilter

This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address
failed:

"andreoli85@googlemail.com":
SMTP error from remote server after transfer of mail text:
host: gmail-smtp-in.l.google.com
5.7.1 [212.227.17.21      11] Our system has detected that this message is
5.7.1 not RFC 2822 compliant. To reduce the amount of spam sent to Gmail,
5.7.1 this message has been blocked. Please review
5.7.1 RFC 2822 specifications for more information. k2si11648437eey.302 - gsmtp


--- The header of the original message is following. ---

Return-Path: wqtn@gis.19327.n5.nabble.com
Received:  from amba.lu ([88.149.180.118]) by mx-ha.gmx.net (mxgmx005) with  ESMTP (Nemesis) id 0Ljcts-1W7Ypc0ZnU-00bZYC for <daniel.andreoli@gmx.de>;  Sun, 27 Oct 2013 15:03:39 +0100 rcc lvuy ztq eqo
From: "iif karl" <wqtn@gis.19327.n5.nabble.com>
Reply-To: "iif karl" <wqtn@gis.19327.n5.nabble.com>
To: ch.kern@gmx.de
Subject: mrji uiip
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain;
Envelope-To: <daniel.andreoli@gmx.de>
X-GMX-Antispam: 5 (nemesis mail header analyzer); Detail=V3;
X-GMX-Antivirus: 0 (no virus found)
X-UI-Filterresults: junk:10;V01:K0:7CER2sxekRI=:dDjILQeb4fn2jt/Dz/hra7RUWbiv
 cOsEl+5Na+4dsn5fVFO2Dm/KzHFn+Rw3M2+xA60h77lGqRfX3UWqR9wmfmDv3YLvGWqR37FWO
 6+xLTaGg3u5GKD5nmW7IMmqvYrnVVZsE4XFKrFsPFDPjYFcwhQzMQFNLsqYKknU2RDJSgIPk8
 KioXK6Nb8F4mVN57dliIr7/93Gi31O6hyroeL3VaHERxEkA0nO8gbdtl0M5v5Lfl6bcXZMq77
 6piVCJNf/+zHU1ZytYugaADHx7YctL6Hfe4aSNKHn27m3OV+aEnHk9q0Rj5grR2HdjrrYeNSf
 5eCP6jlYG1kR19FtkTtpdG2fgk56Q0h5na6KH/oaEcRzcpn88katMo/67pDTWTWQ6cdiclNAQ
 76oV2SK0pzhsGKDXwUs56wHI6M/xVmNr3Q/AKlPA7AX4jDsTD0u+OpecChCkyGR3yBhevoNHn
 l2bL/GgWkcKcgXdYxl38pbcX4sAppohvd4q7bFnp1NYQotRUKLsS6zuqUh48QrMQqN0QzaUVQ
 sQ8X9EBfe+4d/K5ObDrPclJTVOYwLuYI7U0/IPKiRTQ5v+Q7tYwe58dHFClszoQxRo5p7gsmi
 UFw+eMfi0NG5QLhHfcvnG2ivzdUmRMy3gKQVUqXeVCnscPt8j2aet0rdK+eyEPTykcKYDyb34
 ZrED8gYJhSudQju3f7cBwp3mW0wO9ldDl95OqPGiUvxhh8+6hll8i9FiD0pFgXRQXK/4g0eWG
 XKPGgL8VMMotbEGew4F9ucX1DttNnp98DSEOdMYNPVnv6FUnwroOZzKJ9uZXG7F58CcFGNlXW
 5zRmpcORX0w7eF80IJnve0RiNcJYdOGwBQi2GLghiEqjekxdldPi0o9B+URFdYgCKjT4f6MSI
 ALpST8gdzp/PHkBzjdFhrHLqlPd1TW+7pVdoJw5Ohrw4juZYwoaHESZUTJjrpFvwmkXxab3yh
 cQWymUCdJkhR1cV4e+sNbQW/hLGDNPASFxj5nALl+5MKwZInJwqBvR9HM2TdEFgHYkYfcvlUE
 QdCtJ087vtLpMn41ErfZ21H/+oOdNMO+DoJtu24wy9ewMQXwyux5gZMku4vH98ICZ6nRindcB
 fXmjxzI/sTFgaubnEUUpdlaqHJ1hyJQCpu3bJGez3/WEyKUOyMRvnrWt2saLuX4mVObBeRd0L
 WQkVDuwuqHEfrnE5t7fppZaUuDHQ2PwxCOr4j4Rtuzi1bKsRIWSAGBgIxPXnsW6YNT2era/uJ
 Z9Y8yPCT3Qwgv/7jKZDbB1TBLtVIhxCvWho/R8w08c+0fLglw+MO8J+2hRk7DP0ebJ3+/LX0L
 HmcLuA4hPJSzBXV7WcNtEJwprazMN77QyM/W5HeR7gFb97PPiYBBeX5ACGWgHrRzirHDVimUr
 CggI2BpLyBt5pViR/y+avlaicI56MxNNix7kjficOClchadYiUor5fCRktcHz9u0F9+p3nYSj
 dj4qhr2Jg8vXJC6DAoEpW4hcw1u/b6SjnoeiWHPjYRntYkalyVr/5FvSF8VL2fD3CEzvwVsF9
 +Cln3KmPfuS19G/DDb6zQCGWOI0u3G4INF04VVM
X-UI-Loop:V01:UZUx387AM68=:5JHlKE5ozpPP3C0mO0TRd2pjIYb648SVtd5pUKGvSl4=

Vielen Dank im Voraus

LG

Daniel

schrauber · 27.10.2013, 17:33

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Bankzy · 27.10.2013, 19:13

Sorry dann versuche ich es nochmal mit den Logfiles

FRST

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-10-2013 01
Ran by admin (administrator) on ADMIN-PC on 27-10-2013 15:14:23
Running from C:\Users\admin\Downloads
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
( ) C:\Windows\system32\lxdwcoms.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Syntek America Inc.) C:\Windows\System32\StkCSrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(SAMSUNG Electronics co., LTD.) C:\Program Files\Samsung\EBM\EasyBatteryMgr3.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Samsung Magic Doctor\MagicDoctorKbdHk.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
() C:\Program Files\Lexmark 7600 Series\lxdwMsdMon.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Avira Operations GmbH & Co. KG) C:\program files\avira\antivir desktop\avcenter.exe
(Dropbox, Inc.) C:\Users\admin\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
() C:\Users\admin\Downloads\Defogger.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] - RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6111232 2008-04-17] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-10-26] (Synaptics, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-12-23] (Intel Corporation)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-24] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [lxdwmon.exe] - C:\Program Files\Lexmark 7600 Series\lxdwmon.exe [676520 2010-02-10] ()
HKLM\...\Run: [lxdwamon] - C:\Program Files\Lexmark 7600 Series\lxdwamon.exe [16040 2010-02-10] ()
HKLM\...\Run: [PDFPrint] - C:\Program Files\PDF24\pdf24.exe [162856 2013-07-22] (Geek Software GmbH)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [ApnTBMon] - C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1673680 2013-10-23] (APN)
HKCU\...\Run: [iCloudServices] - C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-04-05] (Apple Inc.)
MountPoints2: {5e065830-250c-11e3-aa15-00211930ba88} - E:\AutoRun.exe
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\admin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {E9D169C1-A54B-41CC-B943-A7E61F3C77E0} URL = hxxp://www.google.de/search?q={searchTerms}
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Lexmark  - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\tbj3a2v2.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\tbj3a2v2.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Extension: (Chrome In-App Payments service) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR HKLM\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-09-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-24] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)
S2 lxdwCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdwserv.exe [98984 2009-10-16] (Lexmark International, Inc.)
R2 lxdw_device; C:\Windows\system32\lxdwcoms.exe [594600 2009-10-16] ( )
R2 StkSSrv; C:\Windows\System32\StkCSrv.exe [31248 2008-01-16] (Syntek America Inc.)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-09-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-09-24] (Avira Operations GmbH & Co. KG)
R2 KMDFMEMIO; C:\Windows\System32\DRIVERS\kmdfmemio.sys [13312 2006-11-14] (SAMSUNG ELECTRONICS CO., LTD.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-09-24] (Avira GmbH)
R3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1363088 2008-03-28] (Syntek)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-27 15:14 - 2013-10-27 15:14 - 00000000 ____D C:\FRST
2013-10-27 15:14 - 2013-10-27 15:13 - 01089001 _____ (Farbar) C:\Users\admin\Downloads\FRST.exe
2013-10-27 15:12 - 2013-10-27 15:13 - 00000472 _____ C:\Users\admin\Downloads\defogger_disable.log
2013-10-27 15:12 - 2013-10-27 15:12 - 00050477 _____ C:\Users\admin\Downloads\Defogger.exe
2013-10-27 15:12 - 2013-10-27 15:12 - 00000000 _____ C:\Users\admin\defogger_reenable
2013-10-27 10:42 - 2013-10-27 10:42 - 00000000 ____D C:\Program Files\ESET
2013-10-27 10:41 - 2013-10-27 10:41 - 02347384 _____ (ESET) C:\Users\admin\Downloads\esetsmartinstaller_deu.exe
2013-10-27 10:16 - 2013-10-27 10:16 - 00000000 ____D C:\Users\admin\AppData\Roaming\Malwarebytes
2013-10-27 10:15 - 2013-10-27 10:15 - 00000906 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-27 10:15 - 2013-10-27 10:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-27 10:15 - 2013-10-27 10:15 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-27 10:15 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-27 10:02 - 2013-10-27 10:07 - 00000000 ____D C:\AdwCleaner
2013-10-27 10:01 - 2013-10-27 10:01 - 01060070 _____ C:\Users\admin\Downloads\adwcleaner-3.010.exe
2013-10-25 11:57 - 2013-10-25 11:57 - 00120832 _____ C:\Users\admin\Downloads\Preiskalkulation.xls
2013-10-23 11:06 - 2013-10-23 11:06 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-10-23 11:00 - 2013-10-23 11:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-10-23 11:00 - 2013-10-23 11:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-10-22 20:35 - 2013-09-24 04:07 - 06119424 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 03625984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 01177600 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00479744 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00380928 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-22 20:35 - 2013-09-24 04:07 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-22 20:35 - 2013-09-24 04:06 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2013-10-22 20:35 - 2013-09-23 21:13 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-22 20:35 - 2013-09-23 21:01 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-22 20:27 - 2009-09-10 03:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2013-10-22 20:27 - 2009-09-10 03:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2013-10-22 20:27 - 2009-09-10 03:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-22 20:26 - 2009-10-01 02:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2013-10-22 20:26 - 2009-10-01 02:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2013-10-22 20:26 - 2009-10-01 02:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2013-10-22 20:26 - 2009-10-01 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2013-10-22 20:26 - 2009-10-01 02:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2013-10-22 20:26 - 2009-10-01 02:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2013-10-22 20:26 - 2009-10-01 02:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys
2013-10-22 20:26 - 2009-10-01 02:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WpdConns.dll
2013-10-22 20:26 - 2009-09-25 03:10 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-22 20:26 - 2009-09-25 03:07 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-22 20:26 - 2009-09-25 03:04 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2013-10-22 20:26 - 2009-09-25 02:33 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-22 20:26 - 2009-09-25 02:33 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2013-10-22 20:26 - 2009-09-25 02:32 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2013-10-22 20:26 - 2009-09-25 02:31 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-22 20:22 - 2012-02-29 16:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-22 20:22 - 2012-02-29 16:09 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-22 20:22 - 2012-02-29 14:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-22 20:15 - 2013-10-22 20:16 - 00002472 _____ C:\Windows\IE9_main.log
2013-10-22 20:05 - 2012-07-26 04:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-10-22 20:05 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-10-22 20:05 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-10-22 20:05 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-10-22 20:05 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-10-22 20:05 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-10-22 20:05 - 2012-07-26 03:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-10-22 20:05 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-10-22 20:05 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-10-22 20:05 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-10-22 20:05 - 2009-07-14 13:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2013-10-22 02:01 - 2013-08-01 04:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-22 02:01 - 2013-08-01 03:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-22 02:01 - 2013-07-20 11:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-22 02:01 - 2013-06-15 14:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-10-22 02:01 - 2013-06-15 12:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-22 02:01 - 2012-09-28 17:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-22 02:01 - 2012-05-11 16:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-22 02:01 - 2011-10-14 17:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2013-10-22 02:01 - 2011-10-14 17:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2013-10-22 02:01 - 2011-07-29 17:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-22 02:01 - 2011-07-29 17:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-22 02:01 - 2011-07-29 17:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2013-10-22 02:01 - 2011-07-29 17:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2013-10-22 02:01 - 2011-04-21 14:55 - 00508416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-10-22 02:01 - 2010-05-04 20:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2013-10-22 02:01 - 2009-06-17 14:23 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-10-22 02:00 - 2013-08-29 08:36 - 02050048 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-22 02:00 - 2011-01-20 17:08 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-22 02:00 - 2011-01-20 17:07 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-22 02:00 - 2011-01-20 17:07 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2013-10-22 02:00 - 2011-01-20 17:06 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2013-10-22 02:00 - 2011-01-20 17:04 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2013-10-22 02:00 - 2011-01-20 15:27 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-22 02:00 - 2011-01-20 15:26 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2013-10-22 02:00 - 2011-01-20 15:24 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2013-10-22 02:00 - 2011-01-20 15:15 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2013-10-22 02:00 - 2011-01-20 15:14 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2013-10-22 02:00 - 2011-01-20 15:14 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2013-10-22 02:00 - 2011-01-20 15:14 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2013-10-21 21:48 - 2011-01-20 17:07 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2013-10-21 21:48 - 2011-01-20 17:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2013-10-21 21:48 - 2011-01-20 17:04 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2013-10-21 21:47 - 2013-07-17 20:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-21 21:47 - 2013-07-10 10:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-21 21:47 - 2013-07-05 05:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-21 21:47 - 2012-11-02 11:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-21 21:47 - 2012-11-02 09:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2013-10-21 21:47 - 2012-09-25 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-21 21:47 - 2012-08-21 12:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2013-10-21 21:47 - 2012-06-29 17:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-21 21:47 - 2012-06-08 18:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-21 21:47 - 2012-03-21 00:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-21 21:47 - 2011-11-18 18:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-21 21:47 - 2011-10-14 17:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-21 21:47 - 2011-02-22 15:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-21 21:47 - 2011-02-22 14:33 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-21 21:47 - 2011-02-22 14:33 - 00797696 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-21 21:47 - 2011-01-20 17:08 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-21 21:47 - 2011-01-20 17:08 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-21 21:47 - 2011-01-20 17:08 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-21 21:47 - 2011-01-20 17:08 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-21 21:47 - 2011-01-20 15:28 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2013-10-21 21:47 - 2011-01-20 15:25 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2013-10-21 21:47 - 2011-01-20 15:12 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-21 21:47 - 2011-01-20 15:11 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-21 21:47 - 2011-01-20 14:47 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-21 21:46 - 2013-08-02 05:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-21 21:46 - 2013-06-29 03:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-21 21:46 - 2013-06-29 03:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-21 21:46 - 2013-06-29 03:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-21 21:46 - 2013-06-29 03:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-21 21:46 - 2013-05-02 05:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-21 21:46 - 2013-05-02 05:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2013-10-21 21:46 - 2013-04-24 05:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-21 21:46 - 2013-04-24 02:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-21 21:46 - 2013-03-03 20:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-21 21:46 - 2012-11-22 04:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2013-10-21 21:46 - 2012-11-20 05:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-21 21:46 - 2012-11-08 04:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-21 21:46 - 2012-11-02 11:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-21 21:46 - 2011-12-14 17:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-21 21:46 - 2011-05-05 14:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-21 21:46 - 2011-05-05 14:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-21 21:45 - 2013-07-16 05:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-10-21 21:45 - 2013-07-09 13:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-21 21:45 - 2013-07-08 05:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-10-21 21:45 - 2013-07-08 05:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-21 21:45 - 2013-07-04 05:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-21 21:45 - 2013-07-03 03:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-21 21:45 - 2013-06-27 00:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-21 21:45 - 2013-06-04 05:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-21 21:45 - 2013-06-04 02:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-21 21:45 - 2013-06-01 05:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-21 21:45 - 2013-04-17 13:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-21 21:45 - 2013-03-09 04:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-21 21:45 - 2013-03-09 02:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-21 21:45 - 2013-03-08 04:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-21 21:45 - 2013-03-08 04:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-21 21:45 - 2012-06-05 17:47 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-21 21:45 - 2012-05-01 15:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-21 21:45 - 2011-11-16 17:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2013-10-21 21:45 - 2011-10-25 16:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-21 21:45 - 2011-08-25 17:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-10-21 21:45 - 2011-08-25 17:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-21 21:45 - 2011-08-25 17:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-21 21:45 - 2011-08-25 14:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2013-10-21 21:45 - 2011-06-15 17:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-10-21 21:44 - 2013-02-12 02:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-21 21:44 - 2012-06-04 16:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-21 21:44 - 2012-06-02 01:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-21 21:44 - 2011-11-16 17:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-21 21:44 - 2011-11-16 17:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-21 21:44 - 2011-11-16 15:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-21 21:43 - 2013-07-08 05:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-21 21:43 - 2013-07-08 05:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-21 21:43 - 2013-07-08 05:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-21 21:43 - 2013-07-08 05:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-21 21:18 - 2012-01-09 16:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2013-10-21 20:59 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-10-21 20:59 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-10-21 20:59 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-10-21 20:59 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-10-21 20:58 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-10-21 20:58 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-10-21 20:58 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-10-21 20:58 - 2012-06-02 14:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-10-21 20:58 - 2012-06-02 14:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-10-20 19:14 - 2013-10-20 19:15 - 00000000 ____D C:\Windows\system32\vi-VN
2013-10-20 19:14 - 2013-10-20 19:15 - 00000000 ____D C:\Windows\system32\eu-ES
2013-10-20 19:14 - 2013-10-20 19:15 - 00000000 ____D C:\Windows\system32\ca-ES
2013-10-18 06:49 - 2013-10-21 11:26 - 00009706 _____ C:\Users\admin\Desktop\Stadio Auslastung.xlsx
2013-10-17 13:47 - 2013-10-17 13:47 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-17 13:47 - 2013-10-17 13:47 - 00000000 ____D C:\ProgramData\Oracle
2013-10-17 13:47 - 2013-10-17 13:47 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-17 13:47 - 2013-10-17 13:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-17 13:47 - 2013-10-17 13:46 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-17 13:47 - 2013-10-17 13:46 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-17 13:46 - 2013-10-17 13:46 - 00000000 ____D C:\Program Files\Java
2013-10-15 18:35 - 2013-10-15 18:35 - 00001995 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Google Chrome.lnk
2013-10-15 15:24 - 2013-10-15 18:21 - 00000000 ____D C:\Users\admin\Desktop\Sarkome
2013-10-13 13:22 - 2013-10-13 13:22 - 00030208 _____ C:\Users\admin\Desktop\1307 Netzwerk ML.xls
2013-10-11 12:55 - 2013-10-11 12:55 - 00000000 ____D C:\ProgramData\Sun
2013-10-11 12:50 - 2013-10-11 12:56 - 00000000 ____D C:\Program Files\XMind
2013-10-11 12:28 - 2013-10-27 15:13 - 00000000 ____D C:\Users\admin\AppData\Local\1267EDC2-0F54-4184-9089-76BB271C926B.aplzod
2013-10-11 10:23 - 2013-10-11 10:23 - 00000000 ____D C:\Program Files\QuickTime
2013-10-11 10:06 - 2013-10-11 10:06 - 00001664 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-11 10:04 - 2013-10-11 10:05 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-10-11 10:04 - 2013-10-11 10:05 - 00000000 ____D C:\Program Files\iTunes
2013-10-11 10:04 - 2013-10-11 10:04 - 00000000 ____D C:\Program Files\iPod
2013-10-10 14:53 - 2013-10-10 14:53 - 00030208 _____ C:\Users\admin\Desktop\1307 Netzwerk ML v2.xls
2013-10-10 11:27 - 2013-10-10 11:27 - 00000834 _____ C:\Users\admin\AppData\Local\recently-used.xbel
2013-10-10 11:21 - 2013-10-10 11:21 - 00000000 ____D C:\Users\admin\.thumbnails
2013-10-10 11:19 - 2013-10-10 11:30 - 00000000 ____D C:\Users\admin\.gimp-2.8
2013-10-10 11:19 - 2013-10-10 11:19 - 00000000 ____D C:\Users\admin\AppData\Local\gegl-0.2
2013-10-10 11:13 - 2013-10-10 11:16 - 00000000 ____D C:\Program Files\GIMP 2
2013-10-10 09:57 - 2013-10-10 10:55 - 90139696 _____ (The GIMP Team                                               ) C:\Users\admin\Downloads\gimp-2.8.6-setup.exe
2013-10-10 08:21 - 2013-10-10 08:21 - 00020820 _____ C:\Users\admin\Desktop\1310 Nemetschek Audit Übersicht v3.xlsx
2013-10-09 11:33 - 2013-10-09 11:47 - 00020773 _____ C:\Users\admin\Desktop\1310 Nemetschek Audit Übersicht v2.xlsx
2013-10-07 18:27 - 2013-10-07 18:27 - 00000000 ____D C:\Users\admin\Desktop\Fredy Matrix
2013-10-07 17:27 - 2013-10-07 17:27 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-10-07 17:26 - 2007-02-02 10:27 - 00117760 _____ (Hewlett-Packard Company) C:\Windows\system32\hpz3l4v2.dll
2013-10-07 17:16 - 2013-10-22 19:48 - 00000000 ____D C:\Users\admin\Desktop\FrankJuice
2013-10-07 12:03 - 2013-10-09 11:32 - 00020754 _____ C:\Users\admin\Desktop\1310 Nemetschek Audit Übersicht v1.xlsx
2013-10-07 10:07 - 2013-10-07 10:15 - 00010241 _____ C:\Users\admin\Desktop\Bewerbungsaktivitäten Andreoli.xlsx
2013-10-07 08:32 - 2009-04-11 07:28 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 02134528 _____ (Microsoft Corporation) C:\Windows\system32\FunctionDiscoveryFolder.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 01576960 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 01480704 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 01081344 _____ (Microsoft Corporation) C:\Windows\system32\SLCExt.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00968192 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz2.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00928768 _____ (Microsoft Corporation) C:\Windows\system32\scavenge.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\WscEapPr.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2013-10-07 08:32 - 2009-04-11 07:28 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\EhStorShell.dll
2013-10-07 08:32 - 2009-04-11 07:28 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2013-10-07 08:32 - 2009-04-11 07:27 - 03408896 _____ (Microsoft Corporation) C:\Windows\system32\SLsvc.exe
2013-10-07 08:32 - 2009-04-11 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2013-10-07 08:32 - 2009-04-11 06:03 - 12240896 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2013-10-07 08:32 - 2009-04-11 06:03 - 02644480 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2013-10-07 08:32 - 2009-04-11 05:42 - 00561152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2013-10-07 08:32 - 2009-04-11 03:52 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys
2013-10-07 08:32 - 2009-02-18 19:39 - 00779136 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2013-10-07 08:32 - 2009-02-18 19:38 - 00619864 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2013-10-07 08:31 - 2009-04-11 07:33 - 00986600 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-07 08:31 - 2009-04-11 07:33 - 00926184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-07 08:31 - 2009-04-11 07:33 - 00614376 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2013-10-07 08:31 - 2009-04-11 07:33 - 00292840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00527848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00438744 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2013-10-07 08:31 - 2009-04-11 07:32 - 00265688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00245736 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00223208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00190424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00180712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00161752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00149480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00141288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00125928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00122344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00109032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00099816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-07 08:31 - 2009-04-11 07:32 - 00053736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00053224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00050664 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2013-10-07 08:31 - 2009-04-11 07:32 - 00048104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00035304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00027624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-07 08:31 - 2009-04-11 07:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2013-10-07 08:31 - 2009-04-11 07:32 - 00017896 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-07 08:31 - 2009-04-11 07:32 - 00017384 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 03174400 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 02225664 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 02205184 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 02167808 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 02012160 _____ (Microsoft Corporation) C:\Windows\system32\milcore.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01985024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01856512 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01823744 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01788416 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\apds.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\chsbrkr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01591296 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01589248 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01580544 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01533440 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01524736 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01502720 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01459200 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01382912 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01342464 _____ (Microsoft Corporation) C:\Windows\system32\brcpl.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01324032 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\wercon.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 01112064 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01107968 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01086464 _____ (Microsoft Corporation) C:\Windows\system32\NetProjW.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01078784 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01055232 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 01053696 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00852992 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00807424 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00759296 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2VDEC.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00582144 _____ (Microsoft Corporation) C:\Windows\system32\SLCommDlg.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00550400 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00507904 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00454144 _____ (Microsoft) C:\Windows\system32\IasMigPlugin.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\msvcp60.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00398848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00385536 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00368640 _____ C:\Windows\system32\msjetoledb40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\SLUI.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\RelMon.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\wow32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\SLC.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\wscntfy.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\sperror.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\pnpsetup.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\fundisc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2013-10-07 08:31 - 2009-04-11 07:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\nlhtml.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00117248 _____ C:\Windows\system32\EhStorAuthn.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2013-10-07 08:31 - 2009-04-11 07:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\propdefs.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\iashlpr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\slwmi.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\SLUINotify.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\xmlfilter.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingProxy.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msstrc.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\rtffilt.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\EhStorPwdMgr.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\msscb.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\wsepno.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\uxsms.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\hidserv.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\spcmsg.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2013-10-07 08:31 - 2009-04-11 07:28 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2013-10-07 08:31 - 2009-04-11 07:27 - 02926592 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 02092544 _____ (Microsoft Corporation) C:\Windows\system32\dfsr.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 01827840 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-07 08:31 - 2009-04-11 07:27 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 01122304 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2013-10-07 08:31 - 2009-04-11 07:27 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2013-10-07 08:31 - 2009-04-11 07:27 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2013-10-07 08:31 - 2009-04-11 07:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\IasMigReader.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2013-10-07 08:31 - 2009-04-11 07:27 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00241128 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2013-10-07 08:31 - 2009-04-11 07:27 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-10-07 08:31 - 2009-04-11 07:27 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00130024 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2013-10-07 08:31 - 2009-04-11 07:27 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2013-10-07 08:31 - 2009-04-11 07:27 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\compcln.exe
2013-10-07 08:31 - 2009-04-11 07:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2013-10-07 08:31 - 2009-04-11 07:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2013-10-07 08:31 - 2009-04-11 07:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2013-10-07 08:31 - 2009-04-11 07:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2013-10-07 08:31 - 2009-04-11 07:22 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2013-10-07 08:31 - 2009-04-11 07:22 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2013-10-07 08:31 - 2009-04-11 07:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2013-10-07 08:31 - 2009-04-11 07:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2013-10-07 08:31 - 2009-04-11 05:48 - 00344698 _____ C:\Windows\system32\eaphost.tmf
2013-10-07 08:31 - 2009-04-11 05:46 - 00208966 _____ C:\Windows\system32\WFP.TMF
2013-10-07 08:31 - 2009-04-11 05:45 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2013-10-07 08:31 - 2009-04-11 05:43 - 00442788 _____ C:\Windows\system32\dot3.tmf
2013-10-07 08:31 - 2009-04-11 05:43 - 00392170 _____ C:\Windows\system32\onex.tmf
2013-10-07 08:31 - 2009-04-11 05:43 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2013-10-07 08:31 - 2009-04-11 05:43 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2013-10-07 08:31 - 2009-04-11 05:43 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2013-10-07 08:31 - 2009-04-11 05:42 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-10-07 08:31 - 2009-04-11 05:14 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2013-10-07 08:31 - 2009-04-11 05:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-07 08:31 - 2009-04-11 05:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2013-10-07 08:31 - 2009-04-11 02:59 - 00107612 _____ C:\Windows\system32\StructuredQuerySchema.bin
2013-10-07 08:31 - 2009-04-11 02:54 - 03662128 _____ C:\Windows\system32\locale.nls
2013-10-07 08:31 - 2009-03-30 05:42 - 00155456 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2013-10-07 08:31 - 2009-03-30 05:42 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2013-10-07 08:31 - 2009-03-07 02:11 - 00130008 _____ C:\Windows\system32\systemsf.ebd
2013-10-07 08:31 - 2009-02-20 01:20 - 00009239 _____ C:\Windows\system32\spcinstrumentation.man
2013-10-07 08:31 - 2009-02-18 19:39 - 00092918 _____ C:\Windows\system32\slmgr.vbs
2013-10-07 08:31 - 2009-02-18 19:39 - 00035680 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2013-10-07 08:31 - 2009-02-18 19:38 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2013-10-07 08:31 - 2009-02-18 19:38 - 00035168 _____ (Microsoft Corporation) C:\Windows\system32\infocardcpl.cpl
2013-10-07 08:31 - 2009-02-18 19:38 - 00009048 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 06103040 _____ (Microsoft Corporation) C:\Windows\system32\chtbrkr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 03072000 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 02515968 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 02153472 _____ (Microsoft Corporation) C:\Windows\system32\oobefldr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 01645568 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 01224192 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00777216 _____ (Microsoft Corporation) C:\Windows\system32\slcc.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00657408 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2013-10-07 08:30 - 2009-04-11 07:28 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-10-07 08:30 - 2009-04-11 07:28 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00542720 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\pnpui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00532992 _____ (Microsoft Corporation) C:\Windows\system32\wpcao.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\cmdial32.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\thawbrkr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\modemui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2013-10-07 08:30 - 2009-04-11 07:28 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\SLLUA.exe
2013-10-07 08:30 - 2009-04-11 07:28 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\rasmontr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\dsprop.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\extmgr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\softkbd.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\ntmarta.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mstlsapi.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00083456 _____ (Microsoft) C:\Windows\system32\SMBHelperClass.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\wlgpclnt.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssoc.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Storprop.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\l2nacp.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\slcinst.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\networkitemfactory.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\TSTheme.exe
2013-10-07 08:30 - 2009-04-11 07:28 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\bitsigd.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\whealogr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\msimtf.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\ifmon.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\version.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\winrnr.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\NcdProp.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\MsCtfMonitor.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\vdmdbg.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\midimap.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2013-10-07 08:30 - 2009-04-11 07:28 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\CHxReadingStringIME.dll
2013-10-07 08:30 - 2009-04-11 07:27 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2013-10-07 08:30 - 2009-04-11 07:27 - 01102848 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2013-10-07 08:30 - 2009-04-11 07:27 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2013-10-07 08:30 - 2009-04-11 07:27 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2013-10-07 08:30 - 2009-04-11 07:27 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2013-10-07 08:30 - 2009-04-11 07:27 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\conime.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\cmmon32.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\csrstub.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cbsra.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEject.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.drv
2013-10-07 08:30 - 2009-04-11 07:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fc.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2013-10-07 08:30 - 2009-04-11 07:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2013-10-07 08:30 - 2009-04-11 07:23 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2013-10-07 08:30 - 2009-04-11 07:23 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2013-10-07 08:30 - 2009-04-11 07:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\f3ahvoas.dll
2013-10-07 08:30 - 2009-04-11 06:42 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2013-10-07 08:30 - 2009-04-11 05:46 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2013-10-07 08:30 - 2009-04-11 05:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2013-10-07 08:30 - 2009-04-11 05:46 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys
2013-10-07 08:30 - 2009-04-11 05:46 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-10-07 08:30 - 2009-04-11 05:45 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2013-10-07 08:30 - 2009-04-11 05:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2013-10-07 08:30 - 2009-04-11 05:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2013-10-07 08:30 - 2009-04-11 05:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys
2013-10-07 08:30 - 2009-04-11 05:43 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2013-10-07 08:30 - 2009-04-11 05:42 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-10-07 08:30 - 2009-04-11 05:42 - 00052992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2013-10-07 08:30 - 2009-04-11 05:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-07 08:30 - 2009-04-11 05:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2013-10-07 08:30 - 2009-04-11 05:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2013-10-07 08:30 - 2009-04-11 05:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2013-10-07 08:30 - 2009-04-11 05:39 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2013-10-07 08:30 - 2009-04-11 05:39 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-10-07 08:30 - 2009-04-11 05:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2013-10-07 08:30 - 2009-04-11 05:38 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2013-10-07 08:30 - 2009-04-11 05:27 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2013-10-07 08:30 - 2009-04-11 05:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys
2013-10-07 08:30 - 2009-04-11 05:22 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys
2013-10-07 08:30 - 2009-04-11 05:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2013-10-07 08:30 - 2009-04-11 05:13 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2013-10-07 08:30 - 2009-04-11 05:13 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2013-10-07 08:30 - 2009-04-11 05:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2013-10-07 08:30 - 2009-02-20 01:20 - 00009212 _____ C:\Windows\system32\RacUR.xml
2013-10-07 08:30 - 2009-02-18 19:43 - 00000153 _____ C:\Windows\system32\RacUREx.xml
2013-10-03 15:24 - 2013-10-12 16:03 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-03 15:24 - 2013-10-03 15:24 - 06953096 _____ (Microsoft Corporation) C:\Users\admin\Downloads\Silverlight.exe
2013-10-01 22:54 - 2013-10-04 09:22 - 00000000 ____D C:\Users\admin\Desktop\Justin_Timberlake-The_20-20_Experience-2_Of_2_(Deluxe_Edition)-2013-WHOA
2013-10-01 22:54 - 2013-10-01 22:54 - 00000000 ____D C:\Users\admin\AppData\Roaming\WinRAR
2013-10-01 22:54 - 2013-10-01 22:54 - 00000000 ____D C:\Program Files\WinRAR
2013-10-01 22:50 - 2013-10-11 12:55 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-01 13:27 - 2013-10-17 19:15 - 00000000 ____D C:\Users\admin\AppData\Roaming\Skype
2013-10-01 13:27 - 2013-10-01 13:27 - 00000000 ___RD C:\Program Files\Skype
2013-10-01 13:27 - 2013-10-01 13:27 - 00000000 ____D C:\ProgramData\Skype
2013-10-01 13:27 - 2013-10-01 13:27 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-09-30 15:32 - 2013-10-02 10:56 - 00012920 _____ C:\Users\admin\Desktop\Employees-Sep2013.xlsx
2013-09-30 09:08 - 2013-09-30 09:08 - 00000000 ____D C:\Users\admin\AppData\Local\PDF24
2013-09-30 09:07 - 2013-09-30 09:08 - 00000000 ____D C:\Program Files\PDF24
2013-09-30 09:07 - 2013-09-30 09:07 - 15911976 _____ (Geek Software GmbH                                          ) C:\Users\admin\Downloads\pdf24-creator-5.7.0.exe
2013-09-30 07:32 - 2013-09-30 07:32 - 00104990 _____ C:\Users\admin\Downloads\TS102803622.dotx
2013-09-29 16:56 - 2013-09-29 16:56 - 00699392 _____ C:\Users\admin\Downloads\fitness--und-wellnessbranche---statista-dossier-2012.ppt

==================== One Month Modified Files and Folders =======

2013-10-27 15:14 - 2013-10-27 15:14 - 00000000 ____D C:\FRST
2013-10-27 15:13 - 2013-10-27 15:14 - 01089001 _____ (Farbar) C:\Users\admin\Downloads\FRST.exe
2013-10-27 15:13 - 2013-10-27 15:12 - 00000472 _____ C:\Users\admin\Downloads\defogger_disable.log
2013-10-27 15:13 - 2013-10-11 12:28 - 00000000 ____D C:\Users\admin\AppData\Local\1267EDC2-0F54-4184-9089-76BB271C926B.aplzod
2013-10-27 15:12 - 2013-10-27 15:12 - 00050477 _____ C:\Users\admin\Downloads\Defogger.exe
2013-10-27 15:12 - 2013-10-27 15:12 - 00000000 _____ C:\Users\admin\defogger_reenable
2013-10-27 15:12 - 2013-09-24 12:29 - 00000000 ____D C:\Users\admin
2013-10-27 15:07 - 2013-09-26 09:49 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-27 15:07 - 2013-09-24 12:51 - 00027839 _____ C:\ProgramData\nvModes.dat
2013-10-27 15:07 - 2013-09-24 12:51 - 00027839 _____ C:\ProgramData\nvModes.001
2013-10-27 15:07 - 2008-01-21 02:35 - 01125578 _____ C:\Windows\WindowsUpdate.log
2013-10-27 14:33 - 2006-11-02 13:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-27 14:33 - 2006-11-02 13:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-27 14:26 - 2013-09-24 16:15 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-27 13:08 - 2013-09-24 19:47 - 00000000 ____D C:\Users\admin\AppData\Roaming\Dropbox
2013-10-27 12:55 - 2013-09-24 19:49 - 00000000 ___RD C:\Users\admin\Dropbox
2013-10-27 12:36 - 2008-01-21 08:16 - 01453910 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-27 12:34 - 2006-11-02 13:52 - 00097426 _____ C:\Windows\setupact.log
2013-10-27 10:42 - 2013-10-27 10:42 - 00000000 ____D C:\Program Files\ESET
2013-10-27 10:41 - 2013-10-27 10:41 - 02347384 _____ (ESET) C:\Users\admin\Downloads\esetsmartinstaller_deu.exe
2013-10-27 10:34 - 2013-09-24 16:15 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-27 10:33 - 2008-01-21 03:47 - 00014688 _____ C:\Windows\PFRO.log
2013-10-27 10:33 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-27 10:32 - 2013-09-24 12:26 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-27 10:32 - 2006-11-02 14:01 - 00012422 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-27 10:16 - 2013-10-27 10:16 - 00000000 ____D C:\Users\admin\AppData\Roaming\Malwarebytes
2013-10-27 10:15 - 2013-10-27 10:15 - 00000906 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-27 10:15 - 2013-10-27 10:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-27 10:15 - 2013-10-27 10:15 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-27 10:07 - 2013-10-27 10:02 - 00000000 ____D C:\AdwCleaner
2013-10-27 10:01 - 2013-10-27 10:01 - 01060070 _____ C:\Users\admin\Downloads\adwcleaner-3.010.exe
2013-10-26 12:16 - 2013-09-24 19:18 - 00000000 ____D C:\Users\admin\Documents\NewPlacement
2013-10-25 11:57 - 2013-10-25 11:57 - 00120832 _____ C:\Users\admin\Downloads\Preiskalkulation.xls
2013-10-23 16:26 - 2013-09-24 19:19 - 00000000 ____D C:\Users\admin\Desktop\Nemetschek
2013-10-23 12:59 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-23 11:09 - 2006-11-02 13:47 - 00372096 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-23 11:06 - 2013-10-23 11:06 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-10-23 11:06 - 2008-01-21 08:15 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2013-10-23 11:06 - 2006-11-02 13:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\zh-TW
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\zh-CN
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\uk-UA
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\th-TH
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sv-SE
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sl-SI
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\sk-SK
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ru-RU
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ro-RO
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\pt-PT
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\pt-BR
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\pl-PL
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\nl-NL
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\nb-NO
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\lv-LV
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\lt-LT
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ko-KR
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ja-JP
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\it-IT
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\hu-HU
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\hr-HR
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\he-IL
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\fr-FR
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\fi-FI
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\et-EE
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\el-GR
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\bg-BG
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\ar-SA
2013-10-23 11:06 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-23 11:05 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-23 11:00 - 2013-10-23 11:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-10-23 11:00 - 2013-10-23 11:00 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2013-10-22 20:16 - 2013-10-22 20:15 - 00002472 _____ C:\Windows\IE9_main.log
2013-10-22 19:48 - 2013-10-07 17:16 - 00000000 ____D C:\Users\admin\Desktop\FrankJuice
2013-10-21 11:26 - 2013-10-18 06:49 - 00009706 _____ C:\Users\admin\Desktop\Stadio Auslastung.xlsx
2013-10-21 09:32 - 2013-09-24 12:30 - 00000949 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-21 09:32 - 2013-09-24 12:29 - 00000915 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2013-10-20 19:35 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-10-20 19:16 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-10-20 19:16 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Photo Gallery
2013-10-20 19:16 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-20 19:16 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Collaboration
2013-10-20 19:16 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Windows Calendar
2013-10-20 19:16 - 2006-11-02 13:37 - 00000000 ____D C:\Program Files\Movie Maker
2013-10-20 19:15 - 2013-10-20 19:14 - 00000000 ____D C:\Windows\system32\vi-VN
2013-10-20 19:15 - 2013-10-20 19:14 - 00000000 ____D C:\Windows\system32\eu-ES
2013-10-20 19:15 - 2013-10-20 19:14 - 00000000 ____D C:\Windows\system32\ca-ES
2013-10-20 19:15 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\SLUI
2013-10-20 19:15 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2013-10-20 19:15 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\IME
2013-10-20 18:25 - 2013-09-24 16:54 - 00000000 ____D C:\Program Files\Microsoft Office
2013-10-19 17:38 - 2013-09-24 16:16 - 00001971 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-17 19:15 - 2013-10-01 13:27 - 00000000 ____D C:\Users\admin\AppData\Roaming\Skype
2013-10-17 14:14 - 2013-09-25 13:29 - 00000000 ____D C:\ProgramData\Lx_cats
2013-10-17 13:47 - 2013-10-17 13:47 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-17 13:47 - 2013-10-17 13:47 - 00000000 ____D C:\ProgramData\Oracle
2013-10-17 13:47 - 2013-10-17 13:47 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-17 13:46 - 2013-10-17 13:47 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-17 13:46 - 2013-10-17 13:47 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-17 13:46 - 2013-10-17 13:47 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-17 13:46 - 2013-10-17 13:46 - 00000000 ____D C:\Program Files\Java
2013-10-15 18:35 - 2013-10-15 18:35 - 00001995 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Google Chrome.lnk
2013-10-15 18:21 - 2013-10-15 15:24 - 00000000 ____D C:\Users\admin\Desktop\Sarkome
2013-10-13 13:22 - 2013-10-13 13:22 - 00030208 _____ C:\Users\admin\Desktop\1307 Netzwerk ML.xls
2013-10-12 16:03 - 2013-10-03 15:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-12 16:02 - 2013-09-26 09:39 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-10-11 12:56 - 2013-10-11 12:50 - 00000000 ____D C:\Program Files\XMind
2013-10-11 12:55 - 2013-10-11 12:55 - 00000000 ____D C:\ProgramData\Sun
2013-10-11 12:55 - 2013-10-01 22:50 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-11 12:31 - 2013-09-24 16:54 - 00000000 ____D C:\Users\admin\AppData\Roaming\Apple Computer
2013-10-11 10:23 - 2013-10-11 10:23 - 00000000 ____D C:\Program Files\QuickTime
2013-10-11 10:06 - 2013-10-11 10:06 - 00001664 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-11 10:05 - 2013-10-11 10:04 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-10-11 10:05 - 2013-10-11 10:04 - 00000000 ____D C:\Program Files\iTunes
2013-10-11 10:04 - 2013-10-11 10:04 - 00000000 ____D C:\Program Files\iPod
2013-10-11 10:04 - 2013-09-24 16:52 - 00000000 ____D C:\ProgramData\Apple Computer
2013-10-11 10:04 - 2013-09-24 16:49 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-10-11 10:00 - 2013-09-24 19:48 - 00000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-11 09:18 - 2013-09-24 18:30 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 09:18 - 2013-09-24 16:54 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-11 09:16 - 2006-11-02 11:24 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-10-10 14:53 - 2013-10-10 14:53 - 00030208 _____ C:\Users\admin\Desktop\1307 Netzwerk ML v2.xls
2013-10-10 11:30 - 2013-10-10 11:19 - 00000000 ____D C:\Users\admin\.gimp-2.8
2013-10-10 11:27 - 2013-10-10 11:27 - 00000834 _____ C:\Users\admin\AppData\Local\recently-used.xbel
2013-10-10 11:21 - 2013-10-10 11:21 - 00000000 ____D C:\Users\admin\.thumbnails
2013-10-10 11:19 - 2013-10-10 11:19 - 00000000 ____D C:\Users\admin\AppData\Local\gegl-0.2
2013-10-10 11:16 - 2013-10-10 11:13 - 00000000 ____D C:\Program Files\GIMP 2
2013-10-10 10:55 - 2013-10-10 09:57 - 90139696 _____ (The GIMP Team                                               ) C:\Users\admin\Downloads\gimp-2.8.6-setup.exe
2013-10-10 08:57 - 2013-09-26 09:49 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-10 08:57 - 2013-09-26 09:49 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-10 08:21 - 2013-10-10 08:21 - 00020820 _____ C:\Users\admin\Desktop\1310 Nemetschek Audit Übersicht v3.xlsx
2013-10-09 11:47 - 2013-10-09 11:33 - 00020773 _____ C:\Users\admin\Desktop\1310 Nemetschek Audit Übersicht v2.xlsx
2013-10-09 11:32 - 2013-10-07 12:03 - 00020754 _____ C:\Users\admin\Desktop\1310 Nemetschek Audit Übersicht v1.xlsx
2013-10-07 18:27 - 2013-10-07 18:27 - 00000000 ____D C:\Users\admin\Desktop\Fredy Matrix
2013-10-07 17:30 - 2013-09-24 12:37 - 00022620 _____ C:\Windows\DPINST.LOG
2013-10-07 17:27 - 2013-10-07 17:27 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-10-07 15:06 - 2013-09-24 12:30 - 00000944 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2013-10-07 11:55 - 2013-09-24 16:55 - 00000000 ____D C:\Users\admin\AppData\Local\Microsoft Help
2013-10-07 10:15 - 2013-10-07 10:07 - 00010241 _____ C:\Users\admin\Desktop\Bewerbungsaktivitäten Andreoli.xlsx
2013-10-04 09:22 - 2013-10-01 22:54 - 00000000 ____D C:\Users\admin\Desktop\Justin_Timberlake-The_20-20_Experience-2_Of_2_(Deluxe_Edition)-2013-WHOA
2013-10-03 15:24 - 2013-10-03 15:24 - 06953096 _____ (Microsoft Corporation) C:\Users\admin\Downloads\Silverlight.exe
2013-10-02 10:56 - 2013-09-30 15:32 - 00012920 _____ C:\Users\admin\Desktop\Employees-Sep2013.xlsx
2013-10-02 08:21 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\LogFiles
2013-10-02 07:57 - 2013-09-24 16:58 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-10-01 22:54 - 2013-10-01 22:54 - 00000000 ____D C:\Users\admin\AppData\Roaming\WinRAR
2013-10-01 22:54 - 2013-10-01 22:54 - 00000000 ____D C:\Program Files\WinRAR
2013-10-01 13:27 - 2013-10-01 13:27 - 00000000 ___RD C:\Program Files\Skype
2013-10-01 13:27 - 2013-10-01 13:27 - 00000000 ____D C:\ProgramData\Skype
2013-10-01 13:27 - 2013-10-01 13:27 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-10-01 10:53 - 2013-09-24 16:20 - 00000000 ____D C:\ProgramData\Adobe
2013-09-30 09:08 - 2013-09-30 09:08 - 00000000 ____D C:\Users\admin\AppData\Local\PDF24
2013-09-30 09:08 - 2013-09-30 09:07 - 00000000 ____D C:\Program Files\PDF24
2013-09-30 09:07 - 2013-09-30 09:07 - 15911976 _____ (Geek Software GmbH                                          ) C:\Users\admin\Downloads\pdf24-creator-5.7.0.exe
2013-09-30 07:32 - 2013-09-30 07:32 - 00104990 _____ C:\Users\admin\Downloads\TS102803622.dotx
2013-09-29 16:56 - 2013-09-29 16:56 - 00699392 _____ C:\Users\admin\Downloads\fitness--und-wellnessbranche---statista-dossier-2012.ppt

Some content of TEMP:
====================
C:\Users\admin\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\admin\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\admin\AppData\Local\Temp\ose00000.exe
C:\Users\admin\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-27 10:40

==================== End Of Log ============================

--- --- ---

Bankzy · 27.10.2013, 19:33

Addition

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-10-2013 01
Ran by admin at 2013-10-27 15:15:55
Running from C:\Users\admin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Flash Player 9 ActiveX (Version: 9)
Adobe Reader 8.1.0 - Deutsch (Version: 8.1.0)
Adobe Reader X (10.1.4) - Deutsch (Version: 10.1.4)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Avira Free Antivirus (Version: 13.0.0.4052)
Avira SearchFree Toolbar (Version: 12.6.0.1898)
Bonjour (Version: 3.0.0.10)
Dropbox (HKCU Version: 2.4.2)
Easy Battery Manager (Version: 3.2.1.7)
Easy Display Manager (Version: 2.0.0.0)
Easy Network Manager 3.0 (Version: 3.0.0.0)
Easy SpeedUp Manager (Version: 2.0.1.0)
ESET Online Scanner v3
GIMP 2.8.6 (Version: 2.8.6)
Google Chrome (Version: 30.0.1599.101)
Google Update Helper (Version: 1.3.21.165)
iCloud (Version: 2.1.2.8)
imagine digital freedom - Samsung (Version: 1.0.2.0)
Intel PROSet Wireless
Intel(R) Control Center (Version: 1.2.1.1007)
Intel(R) PROSet/Wireless WiFi-Software (Version: 12.00.2000)
Intel(R) Rapid Storage Technology (Version: 9.5.6.1001)
iTunes (Version: 11.1.1.11)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Lexmark  (Version: 1.0.0.0)
Lexmark 7600 Series
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Outlook Connector (Version: 14.0.6123.5001)
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SOAP Toolkit 2.0 SP2 (Version: 623.1)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 de) (Version: 24.0)
Mozilla Maintenance Service (Version: 24.0)
NVIDIA Drivers
PDF24 Creator 5.7.0
Play AVStation (Version: 4.1.20.50)
Play Camera (Version: 2.0.0.13)
QuickTime (Version: 7.74.80.86)
Realtek High Definition Audio Driver (Version: 6.0.1.5605)
Samsung Magic Doctor (Version: 5.00)
Skype™ 6.7 (Version: 6.7.102)
Steam (Version: 1.0.0.0)
SW Update (Version: 2.1.17)
Synaptics Pointing Device Driver (Version: 10.1.2.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2827325) 32-Bit Edition
Update für Microsoft Office Excel 2007 Help (KB963678)
Update für Microsoft Office Outlook 2007 Help (KB963677)
Update für Microsoft Office Powerpoint 2007 Help (KB963669)
Update für Microsoft Office Word 2007 Help (KB963665)
USB2.0 UVC 1.3M WebCam
USB2.0 UVC WebCam (Version: 6.11.706.012)
User Guide (Version: 1.0)
WIDCOMM Bluetooth Software 6.0.1.6300 (Version: 6.0.1.6300)
WinRAR 5.00 (32-Bit) (Version: 5.00.0)
XMind 2012 (v3.3.1) (Version: 3.3.1.201212250029)

==================== Restore Points  =========================

24-09-2013 11:32:36 Gerätetreiber-Paketinstallation: Intel IDE ATA/ATAPI-Controller
24-09-2013 11:32:49 Gerätetreiber-Paketinstallation: Intel Systemgeräte
24-09-2013 11:33:16 Gerätetreiber-Paketinstallation: Intel Systemgeräte
24-09-2013 11:33:39 Gerätetreiber-Paketinstallation: Intel USB-Controller
24-09-2013 11:34:30 Gerätetreiber-Paketinstallation: Intel Systemgeräte
24-09-2013 11:35:15 Gerätetreiber-Paketinstallation: NVIDIA Grafikkarte
24-09-2013 11:36:07 Gerätetreiber-Paketinstallation: Realtek Semiconductor Corp. Audio-, Video- und Gamecontroller
24-09-2013 11:36:47 Gerätetreiber-Paketinstallation: Marvell Netzwerkadapter
24-09-2013 11:37:36 Gerätetreiber-Paketinstallation: Intel Netzwerkadapter
24-09-2013 11:38:46 Gerätetreiber-Paketinstallation: Synaptics Mäuse und andere Zeigegeräte
24-09-2013 11:39:19 Installed USB2.0 UVC WebCam
24-09-2013 11:39:44 Gerätetreiber-Paketinstallation: D-MAX Technology Bildverarbeitungsgeräte
24-09-2013 11:41:49 Gerätetreiber-Paketinstallation: Broadcom Bluetooth-Funkgerät
24-09-2013 11:42:37 Gerätetreiber-Paketinstallation: Broadcom Corp. Audio-, Video- und Gamecontroller
24-09-2013 11:42:51 Gerätetreiber-Paketinstallation: Broadcom Corp.
24-09-2013 11:43:12 Gerätetreiber-Paketinstallation: Broadcom Eingabegeräte (Human Interface Devices)
24-09-2013 11:44:20 Gerätetreiber-Paketinstallation: Intel IDE ATA/ATAPI-Controller
24-09-2013 11:45:22 Gerätetreiber-Paketinstallation: Intel IDE ATA/ATAPI-Controller
24-09-2013 11:45:58 Installiert Play Camera
24-09-2013 11:46:25 Installed Easy Display Manager
24-09-2013 11:46:43 Gerätetreiber-Paketinstallation: SAMSUNG Systemgeräte
24-09-2013 12:01:15 Windows Vista™ Service Pack 2
24-09-2013 12:02:49 Windows Vista™ Service Pack 2
24-09-2013 15:23:51 Installiert Samsung Update Plus
24-09-2013 15:25:16 Installiert Play AVStation
24-09-2013 15:26:31 Installed Easy Battery Manager
24-09-2013 15:26:55 Installed Easy SpeedUp Manager
24-09-2013 15:27:11 Installed User Guide
24-09-2013 15:28:09 Installed Samsung Magic Doctor
24-09-2013 15:28:40 Installed Wallpaper
24-09-2013 15:29:12 Installiert Easy Network Manager 3.0
24-09-2013 15:48:21 Installed Microsoft Office Professional Plus 2007
24-09-2013 15:50:24 Gerätetreiber-Paketinstallation: Apple, Inc. USB-Controller
24-09-2013 15:50:50 Gerätetreiber-Paketinstallation: Apple Netzwerkadapter
24-09-2013 15:51:35 Installed iTunes
24-09-2013 16:21:54 Gerätetreiber-Paketinstallation: Intel IDE ATA/ATAPI-Controller
24-09-2013 16:47:07 Installed SW Update
24-09-2013 16:49:11 Konfiguriert Samsung Update Plus
24-09-2013 17:22:54 Windows Update
24-09-2013 19:16:11 Windows Update
24-09-2013 19:36:27 Windows Update
24-09-2013 20:43:41 Windows Update
25-09-2013 12:22:37 Gerätetreiber-Paketinstallation: Lexmark Bildverarbeitungsgeräte
25-09-2013 12:25:43 Gerätetreiber-Paketinstallation: Lexmark Inkjet-Treiber Drucker
30-09-2013 06:14:07 Windows Update
01-10-2013 21:58:03 Windows Update
02-10-2013 06:55:47 Windows Update
04-10-2013 08:09:01 Geplanter Prüfpunkt
07-10-2013 16:19:25 Removed Avira SearchFree Toolbar
07-10-2013 16:26:08 Gerätetreiber-Paketinstallation: Hewlett-Packard Drucker
07-10-2013 16:26:36 Gerätetreiber-Paketinstallation: Hewlett-Packard IEEE 1284.4-kompatibler Drucker
07-10-2013 16:27:03 Gerätetreiber-Paketinstallation: Hewlett-Packard USB-Controller
09-10-2013 07:00:28 Windows Update
11-10-2013 08:13:51 Windows Update
17-10-2013 09:27:49 Removed Avira SearchFree Toolbar
17-10-2013 12:45:08 Removed Java(TM) 6 Update 37
17-10-2013 12:46:23 Installed Java 7 Update 45
20-10-2013 17:24:48 Windows Update
20-10-2013 17:32:33 Windows Update
21-10-2013 19:57:53 Windows Update
22-10-2013 18:56:53 Windows Update

==================== Hosts content: ==========================

2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {11512ECB-2C3C-4581-AC92-3EEA123EAAC0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {2F5AFB7C-6B00-4AB5-B29A-4FC62D593583} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [2008-05-22] (SAMSUNG Electronics)
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {3EE3B1F7-2CA8-4A61-8D97-A2A8FE967849} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - admin => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation)
Task: {41B0DAD0-67B1-429C-BD2B-54DCDD72A7C1} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EBM\EasyBatteryMgr3.exe [2008-04-17] (SAMSUNG Electronics co., LTD.)
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {44C2BA65-F2CF-443E-B5F4-97A5ECE0091F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-24] (Google Inc.)
Task: {57FE5003-FB4C-4C62-9775-AC92751B5128} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10] (Adobe Systems Incorporated)
Task: {5F14A80E-25FA-4B0C-B1E8-9C38E6904194} - System32\Tasks\Installation App Launcher => C:\Program Files\Lexmark 7600 Series\lxdwamon.exe [2010-02-10] ()
Task: {933AF58F-4547-4634-911E-3B098EA65D18} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-24] (Google Inc.)
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => C:\Windows\system32\pla.dll [2008-01-21] (Microsoft Corporation)
Task: {B91CF2F7-9748-4EBE-939C-7C88B449F77D} - System32\Tasks\EasySpeedUpManager => C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [2008-04-25] (Samsung Electronics Co., Ltd.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {E5B1D479-D3CE-4E18-A9B8-6A10E144AC5F} - System32\Tasks\SamsungMagicDoctor => C:\Program Files\Samsung\Samsung Magic Doctor\MagicDoctorKbdHk.exe [2007-07-05] (Samsung Electronics Co., Ltd.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-09-24 12:46 - 2006-08-12 11:48 - 00049152 _____ () C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll
2013-09-24 16:27 - 2006-08-12 11:48 - 00049152 _____ () C:\Program Files\SAMSUNG\EasySpeedUpManager\HookDllPS2.dll
2013-09-24 16:28 - 2006-08-12 11:48 - 00049152 _____ () C:\Program Files\Samsung\Samsung Magic Doctor\HookDllPS2.dll
2013-09-13 18:51 - 2013-09-13 18:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 18:51 - 2013-09-13 18:51 - 01242952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-25 13:21 - 2010-01-21 04:09 - 00028672 _____ () C:\Program Files\Lexmark 7600 Series\App4R.Monitor.Common.dll
2013-09-25 13:21 - 2010-01-21 04:09 - 00036864 _____ () C:\Program Files\Lexmark 7600 Series\App4R.Monitor.Core.dll
2013-09-25 13:21 - 2010-01-21 04:08 - 00065536 _____ () C:\Program Files\Lexmark 7600 Series\app4r.devmons.mcmdevmon.dll
2013-09-25 13:21 - 2008-03-25 02:53 - 00012288 _____ () C:\Program Files\Lexmark 7600 Series\app4r.devmons.mcmdevmon.autoplayutil.dll
2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\admin\AppData\Roaming\Dropbox\bin\libcef.dll
2013-10-01 22:50 - 2013-10-01 22:50 - 03279768 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2013-10-10 08:57 - 2013-10-10 08:57 - 16233864 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/27/2013 01:00:17 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ADMIN\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\TO DO OKTOBER.DOCX.LNK> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (10/27/2013 01:00:17 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ADMIN\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\TO DO OKTOBER.DOCX.LNK> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (10/27/2013 00:59:32 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ADMIN\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\TO DO FÜR DIESE WOCHE! .DOCX.LNK> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (10/27/2013 00:59:32 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ADMIN\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\TO DO FÜR DIESE WOCHE! .DOCX.LNK> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (10/27/2013 11:13:12 AM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\TBJ3A2V2.DEFAULT\SAFEBROWSING> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (10/27/2013 11:13:12 AM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ADMIN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\TBJ3A2V2.DEFAULT\SAFEBROWSING> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (10/27/2013 10:34:07 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 10:09:45 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 09:57:52 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 58548610

Error: (10/27/2013 09:57:52 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 58548610


System errors:
=============
Error: (10/27/2013 10:34:07 AM) (Source: Service Control Manager) (User: )
Description: lxdwCATSCustConnectService%%1053

Error: (10/27/2013 10:34:07 AM) (Source: Service Control Manager) (User: )
Description: 30000lxdwCATSCustConnectService

Error: (10/27/2013 10:34:07 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/27/2013 10:09:45 AM) (Source: Service Control Manager) (User: )
Description: lxdwCATSCustConnectService%%1053

Error: (10/27/2013 10:09:45 AM) (Source: Service Control Manager) (User: )
Description: 30000lxdwCATSCustConnectService

Error: (10/27/2013 10:09:45 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/26/2013 09:47:27 AM) (Source: Dhcp) (User: )
Description: Die IP-Adresslease 192.168.2.101 für die Netzwerkkarte mit der Netzwerkadresse 00215D22E294 wurde durch den DHCP-Server 0.0.0.0 abgelehnt (der DHCP-Server hat eine DHCPNACK-Meldung gesendet).

Error: (10/25/2013 04:31:04 PM) (Source: Dhcp) (User: )
Description: Die IP-Adresslease 192.168.2.129 für die Netzwerkkarte mit der Netzwerkadresse 00215D22E294 wurde durch den DHCP-Server 192.168.2.1 abgelehnt (der DHCP-Server hat eine DHCPNACK-Meldung gesendet).

Error: (10/25/2013 09:47:14 AM) (Source: Dhcp) (User: )
Description: Die IP-Adresslease 192.168.2.101 für die Netzwerkkarte mit der Netzwerkadresse 00215D22E294 wurde durch den DHCP-Server 192.168.2.1 abgelehnt (der DHCP-Server hat eine DHCPNACK-Meldung gesendet).

Error: (10/23/2013 00:10:34 PM) (Source: Service Control Manager) (User: )
Description: lxdwCATSCustConnectService%%1053


Microsoft Office Sessions:
=========================
Error: (10/17/2013 03:32:20 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 20726 seconds with 1740 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2013-10-20 19:40:50.423
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-20 19:40:50.267
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-20 19:40:50.111
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-20 19:40:49.955
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-20 19:40:49.767
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 58%
Total physical RAM: 3065.88 MB
Available physical RAM: 1278.61 MB
Total Pagefile: 6330.9 MB
Available Pagefile: 4589.02 MB
Total Virtual: 2047.88 MB
Available Virtual: 1925.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.76 GB) (Free:361.95 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: 5F9C67A8)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================

GMER

Code:

ATTFilter

GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-10-27 16:16:09
Windows 6.0.6002 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST500LM0 rev.2AR1 465,76GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\admin\AppData\Local\Temp\aglorpod.sys


---- System - GMER 2.1 ----

SSDT            9196F9AE                                                                                         ZwCreateSection
SSDT            9196F9B8                                                                                         ZwRequestWaitReplyPort
SSDT            9196F9B3                                                                                         ZwSetContextThread
SSDT            9196F9BD                                                                                         ZwSetSecurityObject
SSDT            9196F9C2                                                                                         ZwSystemDebugControl
SSDT            9196F94F                                                                                         ZwTerminateProcess

---- Kernel code sections - GMER 2.1 ----

.text           ntoskrnl.exe!KeInsertQueue + 405                                                                 820B590C 4 Bytes  [AE, F9, 96, 91] {SCASB ; STC ; XCHG ESI, EAX; XCHG ECX, EAX}
.text           ntoskrnl.exe!KeInsertQueue + 729                                                                 820B5C30 4 Bytes  [B8, F9, 96, 91]
.text           ntoskrnl.exe!KeInsertQueue + 75D                                                                 820B5C64 4 Bytes  [B3, F9, 96, 91] {MOV BL, 0xf9; XCHG ESI, EAX; XCHG ECX, EAX}
.text           ntoskrnl.exe!KeInsertQueue + 7C1                                                                 820B5CC8 4 Bytes  [BD, F9, 96, 91]
.text           ntoskrnl.exe!KeInsertQueue + 809                                                                 820B5D10 4 Bytes  [C2, F9, 96, 91] {RET 0x96f9; XCHG ECX, EAX}
.text           ...                                                                                              
?               System32\drivers\ddpvs.sys                                                                       Das System kann den angegebenen Pfad nicht finden. !
.text           C:\Windows\system32\DRIVERS\nvlddmkm.sys                                                         section is writeable [0x8F007340, 0x3E9407, 0xE8000020]

---- Devices - GMER 2.1 ----

AttachedDevice  \Driver\kbdclass \Device\KeyboardClass0                                                          Wdf01000.sys
AttachedDevice  \Driver\kbdclass \Device\KeyboardClass1                                                          Wdf01000.sys

Device          \Driver\BTHUSB \Device\0000006c                                                                  bthport.sys
Device          \Driver\BTHUSB \Device\0000006e                                                                  bthport.sys

AttachedDevice  \FileSystem\fastfat \Fat                                                                         fltmgr.sys

---- Registry - GMER 2.1 ----

Reg             HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\00211930ba88                      
Reg             HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\00211930ba88 (not active ControlSet)  

---- EOF - GMER 2.1 ----

MBAM

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.27.02

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 7.0.6002.18005
admin :: ADMIN-PC [Administrator]

27.10.2013 10:17:16
mbam-log-2013-10-27 (10-17-16).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 196655
Laufzeit: 12 Minute(n), 28 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 2
C:\Users\admin\AppData\Local\Temp\OCS\ocs_v7f.exe (PUP.Optional.DownloadSponsor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\admin\Downloads\Malwarebytes Anti Malware - CHIP-Downloader.exe (PUP.Optional.DownloadSponsor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

ESET Online Scanner

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=a7bb432c7248964e95d1158c512d139b
# engine=15652
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-27 10:08:34
# local_time=2013-10-27 11:08:34 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1799 16775165 100 95 0 2824762 621 0
# compatibility_mode=5892 16776574 100 95 575554 220401242 0 0
# scanned=2945
# found=0
# cleaned=0
# scan_time=1451
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=a7bb432c7248964e95d1158c512d139b
# engine=15652
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-27 11:12:25
# local_time=2013-10-27 12:12:25 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1799 16775165 100 95 0 2828593 4452 0
# compatibility_mode=5892 16776574 100 95 579385 220405073 0 0
# scanned=167442
# found=0
# cleaned=0
# scan_time=3759
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=a7bb432c7248964e95d1158c512d139b
# engine=15655
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-27 03:31:43
# local_time=2013-10-27 04:31:43 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1799 16775165 100 95 0 2844151 20010 0
# compatibility_mode=5892 16776574 100 95 594943 220420631 0 0
# scanned=135
# found=0
# cleaned=0
# scan_time=89

philip83 · 27.10.2013, 22:01

Ich gehe mal davon aus, dass jede E-Mail auch Deine googlemail-Adresse enthält, da Deine gmx-Mails an googlemail weitergeleitet werden. Ich habe das Problem nämlich auch. Das Verhalten ist zwar nervig, Deine Accounts wurden aber nicht gehackt. Und nun zur Erklärung:

Die gmx-Accounts werden im Moment regelrecht mir Spam zugeballert. Durch die Weiterleitung werden die Mails automatisch an googlemail geschickt. Da sie nicht RFC 2822 compliant sind, werden sie von googlemail abgewiesen, was zu den mailer-daemon-Mails führt, die dann ihrerseits wieder von gmx an googlemail weitergeleitet werden.

Bankzy · 27.10.2013, 22:10

Danke für die Erläuterung.

Also kann ich nicht s machen, außer abwarten bis das vorbei ist???!

schrauber · 28.10.2013, 12:04

scheint so, Logs sind sauber.

28.10.2013, 12:04	#7
schrauber /// the machine /// TB-Ausbilder	Flut von Mailer Daemon @ GMX Mails! scheint so, Logs sind sauber. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Flut von Mailer Daemon @ GMX Mails!

Log-Analyse und Auswertung: Flut von Mailer Daemon @ GMX Mails!